Executive Profile
As a Cybersecurity Consultant, I specialize in translating complex technical vulnerabilities into quantifiable business risks for C-suite and Board-level stakeholders. My expertise lies in architecting security governance structures that align with broader enterprise objectives, ensuring that security operates as a business enabler rather than a roadblock.
I bring extensive experience governing Managed Security Service Providers (MSSPs) and overseeing Security Operations Centers (SOCs) across highly regulated industries, including Datacenters, Financial Services, and Critical Infrastructure. By establishing rigorous KPIs and enforcing SLA adherence, I ensure that enterprise assets—spanning IT and OT environments—are continuously monitored and resilient against emerging threats.
Whether driving external attack surface remediation to improve enterprise BitSight ratings, or engineering end-to-end audit readiness for stringent RBI, SEBI, and CERT-In mandates, my approach focuses on demonstrable risk reduction, operational maturity, and strategic compliance.
Core Competencies
Governance & Risk
- Security Governance
- Cyber Risk Assessments
- Third-Party Risk (TPRM)
- Control Validation
Security Operations
- SOC Oversight & MSSP
- Incident Governance
- Vulnerability Management
- Security Metrics & KPIs
Compliance & Audits
- ISO 27001 ISMS
- RBI Guidelines
- SEBI Requirements
- CERT-In Directives
OT Security
- OT Risk Assessments
- Critical Infrastructure
- OT Asset Visibility
- Vulnerability Lifecycle
Executive Value Delivered
Enterprise Tooling & Platforms
Professional Journey
Cybersecurity Consultant
- Governed security operations and MSS workflows across 1,500+ assets for 8 enterprise clients, ensuring strict SLA adherence and operational maturity.
- Assessed SOC efficacy by engineering rigorous FortiSIEM governance evaluations, auditing use cases, runbooks, and evidence to identify 22 strategic observations.
- Directed EASM initiatives, driving targeted remediations that elevated the AdaniConneX BitSight score from 770 to 800.
- Oversaw OT risk mitigation, bridging IT and manufacturing teams to remediate 45% of critical OT findings within 30 days.
Cybersecurity Consultant
- Directed audit readiness for complex RBI, SEBI, and CERT-In mandates across 11+ highly regulated client engagements.
- Governed vulnerability lifecycles, ensuring timely VAPT execution and measurable reduction in attack surfaces.
- Engineered human firewall strategies, establishing security awareness and advising on phishing simulations for 2,000+ users.
Strategic Engagements
MSSP Governance
Fragmented visibility and disjointed incident response across 1,500+ assets distributed among 8 distinct MSSP environments.
Architected a comprehensive governance framework, aligning decentralized SOC activities with enterprise risk thresholds.
Established unified KPI tracking, sustaining 100% SLA compliance for critical incidents across all portfolios.
OT Remediation
Critical vulnerabilities discovered in legacy OT environments requiring immediate mitigation without manufacturing downtime.
Facilitated strategic alignment between IT security and plant engineers to orchestrate phased, non-disruptive remediations.
Successfully directed the remediation of 45% of critical OT security findings within a strict 30-day window.
Regulatory Audit
Highly complex environments demanding strict adherence to shifting RBI, SEBI, and CERT-In regulatory mandates.
Directed end-to-end readiness programs, standardizing evidence collection and mapping controls to legal frameworks.
Delivered multiple seamless audit engagements, resulting in zero major non-conformities and protecting client licenses.
Professional Validation
Active Credentials
Development Roadmap
Ready to Align Security & Strategy?
Currently exploring senior consulting engagements and GRC leadership roles. Let's discuss how to operationalize your security governance and reduce enterprise risk.